Security

9 articles

• Apr 3, 2026

  LinkedIn Extension Scanning Allegations: BrowserGate, EU Privacy, and Competitive Intelligence

  Fairlinked’s BrowserGate investigation alleges client-side extension probing on linkedin.com—claims, GDPR (including special-category risk under Article 9), DMA gatekeeper context, enterprise GTM exposure, SignalStack’s read, and Primary sources & market bridge.

• Apr 2, 2026

  Axios npm Incident: Phantom Dependency, RAT Dropper, and Supply-Chain Lessons

  Malicious axios@1.14.1 and axios@0.30.4 on npm—phantom plain-crypto-js in tarballs, RAT/C2 on port 8000, OIDC vs manual publish signals, npm response, CISA/Microsoft/Mandiant/GitHub primary links, and SignalStack’s defender checklist.

• Apr 1, 2026

  Claude Code npm Leak: Source Maps, IP Risk, and the March 2026 npm Window

  @anthropic-ai/claude-code v2.1.88 shipped a ~59.8 MB source map on npm—unobfuscated TypeScript reconstruction (~512k lines), packaging error vs malware (Axios), release hygiene (files, .npmignore, npm publish --dry-run), and Primary sources & security bridge.

• Mar 30, 2026

  Miasma: Trap Paths, Poison Data, and the Economics of AI Scraping

  Rust trap-router Miasma—infinite crawl loops vs poison/gibberish sources, egress economics, aria/nofollow hygiene, robots & ai.txt standardization, IETF AI-robots drafts, and Primary sources & security bridge.

• Mar 27, 2026

  Tesla Model 3 on a Desk: Salvage Bring-Up, Rosenberger Cables, and Security Research

  Bench-mounting MCU, AP, and display from salvage—inrush vs bench supplies, thermal throttling off vehicle cooling, Rosenberger/HSD paths, MAX16932 repair, ODIN/service surfaces, harness economics, and cited primary sources.

• Mar 26, 2026

  LiteLLM on PyPI: Backdoored Builds, Secret Harvest, and .pth Persistence

  Reported malicious 1.82.7–1.82.8 on PyPI—import-time execution, credential theft, .pth-based interpreter startup hooks (host persistence), key concentration, hash pinning, remediation, and primary sources.

• Mar 25, 2026

  Windows 11 ‘Fix’: Performance Reset, Ads, Copilot, and the Trust Deficit

  Microsoft’s repair-first narrative versus Copilot/ads friction—WinUI 3 and shell latency, TPM/CPU eligibility and e-waste, OOB patch chains and regression risk, with primary sources.

• Mar 20, 2026

  Android Sideloading ‘Advanced Flow’: 24-Hour Delay, Verification, and Coercion Breaks

  Advanced Flow 24h delay as cooling-off vs scam urgency, verified vs unverified reputation lanes, Brazil/SG/ID/TH testbed logic, NIST/EFF policy bridge, and primary sources.

• Mar 18, 2026

  Xbox One ‘Bliss’: Voltage Glitching, Boot Trust, and Unpatchable Hardware Reality

  Public Bliss-style break of long-standing Xbox One boot protections—privileged unsigned code, ROM-era limits, and what changes for preservation versus abuse.